CVE-2010-0040 : Integer overflow in ColorSync in Apple Safari before 4.0.5 on Windows, and iTune

Integer overflow in ColorSync in Apple Safari before 4.0.5 on Windows, and iTunes before 9.1, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an image with a crafted color profile that triggers a heap-based buffer overflow.

Published 2010-03-15 13:28:25

Updated 2025-04-11 00:51:22

Source Apple Inc.

View at NVD, CVE.org

Vulnerability category: OverflowExecute codeDenial of service

Products affected by CVE-2010-0040

Apple » Safari
Versions up to, including, (<=) 4.0.4
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Windows
Apple » Safari » Version: 4.0.0b
cpe:2.3:a:apple:safari:4.0.0b:*:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Windows
Apple » Safari » Version: 4.0
cpe:2.3:a:apple:safari:4.0:*:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Windows
Apple » Safari » Version: 4.0.1
cpe:2.3:a:apple:safari:4.0.1:*:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Windows
Apple » Safari » Version: 4.0.2
cpe:2.3:a:apple:safari:4.0.2:*:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Windows
Apple » Safari » Version: 4.0.3
cpe:2.3:a:apple:safari:4.0.3:*:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Windows

Exploit prediction scoring system (EPSS) score for CVE-2010-0040

EPSS FAQ

19.78%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 95 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2010-0040

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
9.3	HIGH	AV:N/AC:M/Au:N/C:C/I:C/A:C	8.6	10.0	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2010-0040

CWE-189

Assigned by: nvd@nist.gov (Primary)

References for CVE-2010-0040

http://secunia.com/advisories/39135

Sign in

CVEs referencing this url
http://support.apple.com/kb/HT4070

About the security content of Safari 4.0.5 - Apple Support
Vendor Advisory

CVEs referencing this url
http://www.securityfocus.com/bid/38674

Apple Safari Prior to 4.0.5 Integer Overflow Vulnerability
Patch
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6741

Repository / Oval Repository
http://lists.apple.com/archives/security-announce/2010/Mar/msg00000.html

Apple - Lists.apple.com
Vendor Advisory

CVEs referencing this url
https://exchange.xforce.ibmcloud.com/vulnerabilities/56826

Apple Safari ColorSync buffer overflow CVE-2010-0040 Vulnerability Report
http://support.apple.com/kb/HT4105

About the security content of iTunes 9.1 - Apple Support

CVEs referencing this url
http://www.securitytracker.com/id?1023706

Apple Safari Bugs Let Remote Users Cause Arbitrary Code to Be Executed - SecurityTracker

CVEs referencing this url
http://www.securityfocus.com/bid/38671

RETIRED: Apple Safari Prior to 4.0.5 Multiple Security Vulnerabilities
Patch

CVEs referencing this url
http://lists.apple.com/archives/security-announce/2010//Mar/msg00003.html

Apple - Lists.apple.com

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2010-0040

Products affected by CVE-2010-0040

Exploit prediction scoring system (EPSS) score for CVE-2010-0040

CVSS scores for CVE-2010-0040

CWE ids for CVE-2010-0040

References for CVE-2010-0040